Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Missing Emerge log entries.[SOLVED]
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
spidark
Tux's lil' helper
Tux's lil' helper


Joined: 01 Sep 2011
Posts: 142

PostPosted: Fri Sep 21, 2018 5:32 pm    Post subject: Missing Emerge log entries.[SOLVED] Reply with quote

Hi all.
I just ran rkhunter , and it came up with a few warnings.
Code:

File: /bin/login
File: /bin/groups
File: /bin/passwd
File: /bin/su
File: /sbin/nologin
File: /usr/bin/lastlog
File: /usr/sbin/groupadd
More warnings, but ill keep it short.


All the above belongs to the sys-apps/shadow-4.6
All have the same modification times.
Code:

Current file modification time: 1537023616 (15-Sep-2018 17:00:16)
Stored file modification time : 1525391550 (04-May-2018 01:52:30)

There is no recorded data of this install, when checking logs within elogv.

Code:
* sys-auth/polkit-0.113-r4 - 09/15/2018                                                                                            │
│ * app-antivirus/clamav-0.100.1 - 09/15/2018                                                                                        │
│ * app-admin/sudo-1.8.23-r2 - 09/15/2018                                                                                            │
│ * app-admin/sudo-1.8.23-r2 - 09/15/2018   


However running genlop -t shadow does.
Code:
* sys-apps/shadow

     Sat Sep 15 17:00:23 2018 >>> sys-apps/shadow-4.6
       merge time: 42 seconds.

I have a unset PORT_LOGDIR, so if i'm not mistaken things defaults to /var/log/portage/elog Directory.
There no sys-apps/shadow-4.6 in that directory.
The Same story as above goes for the package net-misc/iputils-20171016_pre
which rkhunter gave a warning on the following file.
Code:

File: /bin/ping
Current file modification time: 1537023148 (15-Sep-2018 16:52:28)
Stored file modification time : 1536700098 (11-Sep-2018 23:08:18)

* net-misc/iputils

     Tue Sep 11 23:08:22 2018 >>> net-misc/iputils-20171016_pre
       merge time: 7 seconds.

     Sat Sep 15 16:52:34 2018 >>> net-misc/iputils-20171016_pre
       merge time: 10 seconds.


I cant remember installing iputils, and i cant remember doing that twice :(
Maybe i'm just getting old :wink:

Ok Here are the Outputs of qcheck shadow and iputils
as Normal user.
Code:

$ qcheck shadow
Checking sys-apps/shadow-4.6 ...
 PERM 4711: /usr/bin/gpasswd
 PERM 4711: /usr/bin/chfn
 PERM 4711: /usr/bin/newgidmap
 PERM 4711: /usr/bin/expiry
 PERM 4711: /usr/bin/chsh
 PERM 4711: /usr/bin/newgrp
 PERM 4711: /usr/bin/newuidmap
 PERM 4711: /usr/bin/chage
 PERM 4711: /bin/passwd
 PERM 4711: /bin/su
 PERM  600: /etc/default/useradd
  * 640 out of 651 files are good (Unable to digest 11 files)
Checking virtual/shadow-0 ...
  * 0 out of 0 file are good


$ qcheck iputils
Checking net-misc/iputils-20171016_pre ...
 PERM  711: /bin/arping
 PERM  711: /bin/ping
  * 13 out of 15 files are good (Unable to digest 2 files)


And as root
Code:
Checking sys-apps/shadow-4.6 ...
  * 651 out of 651 files are good
Checking virtual/shadow-0 ...
  * 0 out of 0 file are good

Checking net-misc/iputils-20171016_pre ...
  * 15 out of 15 files are good


Any ideas ?
Thanks in advance.
_________________
Laptop HP Pavilion G6 2310-SD Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz


Last edited by spidark on Fri Sep 21, 2018 8:05 pm; edited 1 time in total
Back to top
View user's profile Send private message
NeddySeagoon
Administrator
Administrator


Joined: 05 Jul 2003
Posts: 42587
Location: 56N 3W

PostPosted: Fri Sep 21, 2018 5:50 pm    Post subject: Reply with quote

spidark,

Both shadow and iproute2 are free with the stage3 tarball, so you would only have emerged them yourself if there were new versions or you changed USE flags.
_________________
Regards,

NeddySeagoon

Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail.
Back to top
View user's profile Send private message
spidark
Tux's lil' helper
Tux's lil' helper


Joined: 01 Sep 2011
Posts: 142

PostPosted: Fri Sep 21, 2018 6:39 pm    Post subject: Reply with quote

NeddySeagoon wrote:
spidark,

Both shadow and iproute2 are free with the stage3 tarball, so you would only have emerged them yourself if there were new versions or you changed USE flags.

Hi NeddySeagoon.
Thanks for your reply :D
Yes i know these packages comes within stage3 tarball, and i had no reason to install them manually.
So ruling me out as the installer. and leaving only room for updates.
There's no records of them in my world file, correct me if i'm wrong.
Manual installs gets recorded to world ?
What i don't understand is why there's no entry of iputils (not iproute) and shadow in my logs,
I remember installing Network Manager which has iputils as a dep.
I know i have added the network manager use flag to pull in NetworkManager package.
Not sure is this rebuilds iputils package, because none of my useflag effects iputils package.
Let say portage did rebuild iputils.
But still the date does not check

Code:
sudo genlop -t networkmanager
Password:
 * net-misc/networkmanager

     Wed Sep 12 16:37:17 2018 >>> net-misc/networkmanager-1.10.10
       merge time: 1 minute and 51 seconds.

* These packages depend on iputils:
net-misc/networkmanager-1.10.10 (net-misc/iputils)
                                (net-misc/iputils[arping(+)])

Warning: The file properties have changed:
File: /bin/ping
Current inode: 1444722    Stored inode: 1441865
Current file modification time: 1537023148 (15-Sep-2018 16:52:28)
Stored file modification time : 1536700098 (11-Sep-2018 23:08:18)

$ equery b /bin/ping
 * Searching for /bin/ping ...
net-misc/iputils-20171016_pre (/bin/ping)


Same story for the Shadow package.
No entry logs, no where, or i'm looking into the wrong places.
Code:
$ equery d shadow
 * These packages depend on shadow:
mail-mta/nullmailer-2.0-r1 (virtual/shadow)
net-misc/openssh-7.7_p1-r9 (userland_GNU ? virtual/shadow)
virtual/shadow-0 (!prefix ? >=sys-apps/shadow-4.1)

$ sudo genlop -t net-misc/openssh
 * net-misc/openssh

     Wed Sep 12 00:29:01 2018 >>> net-misc/openssh-7.7_p1-r9
       merge time: 1 minute and 8 seconds.

Lets say openssh was updated, and portage for some unknown reason decided to rebuild shadow as a dep.
Again the dates does not check.
Shouldn't there be a rebuild log somewhere ?
Where does genlop gets it info from ?
Thats whats bugging me.
Thaks again Neddy :wink:
_________________
Laptop HP Pavilion G6 2310-SD Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Back to top
View user's profile Send private message
NeddySeagoon
Administrator
Administrator


Joined: 05 Jul 2003
Posts: 42587
Location: 56N 3W

PostPosted: Fri Sep 21, 2018 7:05 pm    Post subject: Reply with quote

spidark,

What is the timestamp on /var/log/emerge.log ?
What is the time of the very first entry in /var/log/emerge.log. It should be the time you ran emerge for the first time on this install, unless the log has been rotated.

There is only one log for emerges, it records them all.

world records packages you install but not these packages dependances. They may change and are calculated every time you emerge world.
When dependencies change, you get orphans left installed. That why you need --depclean as a part of your update process.

Look around in /var/db/pkg/ but take great care not to edit anything. This is how portage knows what you have installed and the settings used at install time.

I'm not sure if /var/db/pkg/ is provided in the stage3 or not. I think it probably is since portage needs to know how the stage3 was built.
In turn, that means you can have packages (from the stage3) that are older than your install date.
_________________
Regards,

NeddySeagoon

Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail.
Back to top
View user's profile Send private message
freke
Guru
Guru


Joined: 23 Jan 2003
Posts: 402
Location: Somewhere in Denmark

PostPosted: Fri Sep 21, 2018 7:22 pm    Post subject: Reply with quote

elogv only logs packages wich is triggered by the classes set in /etc/portage/make.conf?
ie. I have
Code:
PORTAGE_ELOG_SYSTEM="save mail"
PORTAGE_ELOG_CLASSES="warn error log qa"

So many packages aren't logged there.


genlop should be using /var/log/emerge.log afaik
Back to top
View user's profile Send private message
spidark
Tux's lil' helper
Tux's lil' helper


Joined: 01 Sep 2011
Posts: 142

PostPosted: Fri Sep 21, 2018 8:04 pm    Post subject: Reply with quote

Hi Neddy,
I'm definitely getting old and Paranoid :oops: My bad.
NeddySeagoon wrote:

What is the timestamp on /var/log/emerge.log ?

Code:
1536702056: Started emerge on: Sep 11, 2018 21:40:56
1536702056:  *** emerge --newuse --update --ask --deep @world

I remember that one.

Here comes the getting old and paranoid Part.
Can't remember these :wink:

Shadow

Code:
1537023575: Started emerge on: Sep 15, 2018 16:59:35
1537023575:  *** emerge --oneshot --ask --verbose sys-apps/shadow
1537023581:  >>> emerge (1 of 1) sys-apps/shadow-4.6 to /


Iputils

Code:

1536698629: Started emerge on: Sep 11, 2018 22:43:49
1536698629:  *** emerge --newuse --update --ask --deep --with-bdeps=y --verbose @world
which caused this

1536700095:  >>> emerge (71 of 153) net-misc/iputils-20171016_pre to /

and

1537023134: Started emerge on: Sep 15, 2018 16:52:13
1537023134:  *** emerge --oneshot --ask --verbose net-misc/iputils
1537023144:  >>> emerge (1 of 1) net-misc/iputils-20171016_pre to /

Can't remember those :oops:

freke wrote:
elogv only logs packages wich is triggered by the classes set in /etc/portage/make.conf?
ie. I have
Code:
PORTAGE_ELOG_SYSTEM="save mail"
PORTAGE_ELOG_CLASSES="warn error log qa"

So many packages aren't logged there.


genlop should be using /var/log/emerge.log afaik


Freke mine differs, but i'm going to look into that. :wink:
Code:
PORTAGE_ELOG_CLASSES="warn error log"
PORTAGE_ELOG_SYSTEM="save"

Neddy And Freke,
Sorry for wasting your precious time, but i'm truly glad you guys helped :)
Thanks Guys.
This one Solved. :wink:
_________________
Laptop HP Pavilion G6 2310-SD Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Back to top
View user's profile Send private message
Anon-E-moose
Advocate
Advocate


Joined: 23 May 2008
Posts: 3691
Location: Dallas area

PostPosted: Fri Sep 21, 2018 8:21 pm    Post subject: Reply with quote

PORTAGE_ELOG_SYSTEM="echo save save_summary"
PORTAGE_ELOG_CLASSES="*"
_________________
Asus m5a99fx, FX 8320 - nouveau & radeon, oss4
Acer laptop E5-575, i3-7100u - i965, alsa
---both---
4.14.62 kernel, profile 17.0 (no-pie) amd64-no-multilib
gcc 7.3.0, eudev, openrc, openbox, palemoon
Back to top
View user's profile Send private message
freke
Guru
Guru


Joined: 23 Jan 2003
Posts: 402
Location: Somewhere in Denmark

PostPosted: Fri Sep 21, 2018 8:23 pm    Post subject: Reply with quote

The mail part in PORTAGE_ELOG_SYSTEM reuqires additional setup.
Code:
PORTAGE_ELOG_SYSTEM
          Please see /usr/share/portage/config/make.conf.example for elog documentation.


Dunno if everything is kept in elogv if * is selected as a class?
Back to top
View user's profile Send private message
Anon-E-moose
Advocate
Advocate


Joined: 23 May 2008
Posts: 3691
Location: Dallas area

PostPosted: Fri Sep 21, 2018 9:00 pm    Post subject: Reply with quote

AFAIK everything gets logged.

From /usr/share/portage/config/make.conf.example
Code:
# logging related variables:
# PORTAGE_ELOG_CLASSES: selects messages to be logged, possible values are:
#                          info, warn, error, log, qa, *
#PORTAGE_ELOG_CLASSES="log warn error"

_________________
Asus m5a99fx, FX 8320 - nouveau & radeon, oss4
Acer laptop E5-575, i3-7100u - i965, alsa
---both---
4.14.62 kernel, profile 17.0 (no-pie) amd64-no-multilib
gcc 7.3.0, eudev, openrc, openbox, palemoon
Back to top
View user's profile Send private message
spidark
Tux's lil' helper
Tux's lil' helper


Joined: 01 Sep 2011
Posts: 142

PostPosted: Fri Sep 21, 2018 9:09 pm    Post subject: Reply with quote

Anon-E-moose wrote:
AFAIK everything gets logged.

From /usr/share/portage/config/make.conf.example
Code:
# logging related variables:
# PORTAGE_ELOG_CLASSES: selects messages to be logged, possible values are:
#                          info, warn, error, log, qa, *
#PORTAGE_ELOG_CLASSES="log warn error"

Trying This Setup
Code:

PORTAGE_ELOG_SYSTEM="save_summary:log,warn,error,qa echo"
PORTAGE_ELOG_CLASSES="warn error logi qa"

_________________
Laptop HP Pavilion G6 2310-SD Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum